I don’t know if it’s a bug, or it’s just an unrealized feature, but I decided to create a bug.I'm trying to move from sp...

Describe the bugDeclaring RoleHierarchy in a @Bean behave differently when declared manually to AuthorityAuthorizationMa...

This issue was originally discussed in https://github.com/spring-projects/spring-boot/issues/34400.The scenario is the f...

Expected BehaviorAllow OpenSamlMetadataResolver to generate metadata that is not pretty printed. This can be achieved by...

Forward port of issue #13940 to 6.2.x.Comment From: marcusdacoregioDuplicate of https://github.com/spring-projects/sprin...

Forward port of issue #13939 to 6.1.x.Comment From: marcusdacoregioDuplicate of https://github.com/spring-projects/sprin...

Describe the bugIt seems relayState property should be bindingTo Reproduceclass Saml2LogoutRequestMixin {.. @JsonProper...

java.lang.ClassNotFoundException: o.s.security.oauth2.server.resource.authentication.JwtGrantedAuthoritiesConverter rece...

AuthorizationManager makes the following possible in the DSL:http .authorizeHttpRequests((authorize) -> authorize ...

Expected BehaviorWhen using Spring Security OAuth2 Client, even if we misconfigured the user info endpoint which result ...

Taking this working example from the documentation:@Servicepublic class MyCustomerService { @PreAuthorize("hasAu...

This is a central issue used to group the tasks that need to be done in order to use Dependabot for version update[x] ht...

We have been using the version 0.0.15 of io.spring.javaformat:spring-javaformat-checkstyle for a long time now. The late...

The snapshot_tests CI job has some old versions for some dependencies that do not align with what the current branch is ...

Forward port of #13871Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/commit/...

Forward port of issue #13870Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/c...

Forward port of #13868Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/commit/...

In order to improve our build and dependency version management, we should use Gradle's Version Catalog.This is also a p...

When using custom servlets, it's possible that an application may try and apply the servlet mapping to AntPathRequestMat...

In https://docs.spring.io/spring-security/reference/servlet/oauth2/login/core.html@Configurationpublic class OAuth2Login...